leaky gateway

Simon Jones simonmjones at gmail.com
Tue May 5 13:17:16 IST 2009


Hi folks,

I'm running a distributed system, one of the gateways seems to have
sprung a leek though and is letting some spam through which is being
caught on the other systems.  I copied the config files between the
systems to ensure consistancy when the systems were built so I'm
wondering if it could be some other weakness I haven't considered,
perhaps a time-out or setitng which causes the messages to be sent
through unscanned or part scanned perhaps?  I'm using mailwatch too
and can see the scores in the message headers, an example of one is
below;

thanks for any help or suggestions you may offer,

2.44
Spam Report: Score Matching Rule Description
 cached
 score=2.441
3 required
 autolearn=disabled
0.50 FH_HELO_EQ_D_D_D_D Helo is d-d-d-d
0.17 HTML_IMAGE_RATIO_04 HTML has a low ratio of text to image area
0.00 HTML_MESSAGE HTML included in message
1.67 MIME_HTML_ONLY Message only has text/html MIME parts
0.10 RDNS_DYNAMIC Delivered to trusted network by host with dynamic-looking rDNS


More information about the MailScanner mailing list